City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 19.198.242.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40346
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;19.198.242.96. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 20:55:09 CST 2025
;; MSG SIZE rcvd: 106Host 96.242.198.19.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 96.242.198.19.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.220.101.69 | attackbots | 2019-07-08T14:44:38.895719WS-Zach sshd[16990]: User root from 185.220.101.69 not allowed because none of user's groups are listed in AllowGroups 2019-07-08T14:44:38.905803WS-Zach sshd[16990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.69 user=root 2019-07-08T14:44:38.895719WS-Zach sshd[16990]: User root from 185.220.101.69 not allowed because none of user's groups are listed in AllowGroups 2019-07-08T14:44:41.013189WS-Zach sshd[16990]: Failed password for invalid user root from 185.220.101.69 port 43344 ssh2 2019-07-08T14:44:38.905803WS-Zach sshd[16990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.69 user=root 2019-07-08T14:44:38.895719WS-Zach sshd[16990]: User root from 185.220.101.69 not allowed because none of user's groups are listed in AllowGroups 2019-07-08T14:44:41.013189WS-Zach sshd[16990]: Failed password for invalid user root from 185.220.101.69 port 43344 ssh2 2019-07-08T14:44:44.80557 |
2019-07-09 05:29:30 |
| 177.125.58.145 | attack | 08.07.2019 21:17:02 SSH access blocked by firewall |
2019-07-09 05:26:57 |
| 182.73.47.154 | attackbots | Jul 8 20:43:37 vps sshd[16844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.73.47.154 Jul 8 20:43:39 vps sshd[16844]: Failed password for invalid user pi from 182.73.47.154 port 41100 ssh2 Jul 8 20:45:51 vps sshd[16933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.73.47.154 ... |
2019-07-09 04:48:20 |
| 168.0.8.240 | attackspambots | leo_www |
2019-07-09 05:12:06 |
| 41.80.11.59 | attackspambots | Autoban 41.80.11.59 AUTH/CONNECT |
2019-07-09 05:29:05 |
| 51.254.164.230 | attackbotsspam | Jul 8 21:30:08 animalibera sshd[28591]: Invalid user kevin from 51.254.164.230 port 49880 ... |
2019-07-09 05:31:52 |
| 94.102.50.96 | attackspambots | Jul 8 19:48:22 box kernel: [722726.140470] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=94.102.50.96 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=54321 PROTO=TCP SPT=59990 DPT=999 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 8 20:10:45 box kernel: [724069.364925] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=94.102.50.96 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=54321 PROTO=TCP SPT=58082 DPT=8083 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 8 21:00:13 box kernel: [727037.769783] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=94.102.50.96 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=54321 PROTO=TCP SPT=36558 DPT=8089 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 8 22:34:49 box kernel: [732713.653011] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=94.102.50.96 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=54321 PROTO=TCP SPT=59565 DPT=8181 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 8 23:06:05 box kernel: [734589.045933] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=94.102.50.96 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=543 |
2019-07-09 05:18:10 |
| 153.36.236.234 | attackbotsspam | Jul 9 03:38:57 webhost01 sshd[816]: Failed password for root from 153.36.236.234 port 30694 ssh2 ... |
2019-07-09 04:48:36 |
| 45.55.35.40 | attack | Tried sshing with brute force. |
2019-07-09 05:34:47 |
| 218.92.0.185 | attack | Jul 8 23:03:31 h2177944 sshd\[9693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.185 user=root Jul 8 23:03:33 h2177944 sshd\[9693\]: Failed password for root from 218.92.0.185 port 23493 ssh2 Jul 8 23:03:35 h2177944 sshd\[9693\]: Failed password for root from 218.92.0.185 port 23493 ssh2 Jul 8 23:03:38 h2177944 sshd\[9693\]: Failed password for root from 218.92.0.185 port 23493 ssh2 ... |
2019-07-09 05:24:02 |
| 121.188.88.70 | attack | MYH,DEF GET /shell.php |
2019-07-09 05:09:47 |
| 153.36.240.126 | attackspambots | Jul 8 22:51:37 minden010 sshd[24034]: Failed password for root from 153.36.240.126 port 33864 ssh2 Jul 8 22:51:39 minden010 sshd[24034]: Failed password for root from 153.36.240.126 port 33864 ssh2 Jul 8 22:51:41 minden010 sshd[24034]: Failed password for root from 153.36.240.126 port 33864 ssh2 ... |
2019-07-09 04:58:09 |
| 183.131.82.99 | attackbots | 19/7/8@16:30:58: FAIL: Alarm-SSH address from=183.131.82.99 ... |
2019-07-09 04:56:04 |
| 153.36.236.151 | attackspambots | 2019-07-08T22:37:10.988709lon01.zurich-datacenter.net sshd\[8450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.151 user=root 2019-07-08T22:37:13.360400lon01.zurich-datacenter.net sshd\[8450\]: Failed password for root from 153.36.236.151 port 21266 ssh2 2019-07-08T22:37:15.170314lon01.zurich-datacenter.net sshd\[8450\]: Failed password for root from 153.36.236.151 port 21266 ssh2 2019-07-08T22:37:17.588006lon01.zurich-datacenter.net sshd\[8450\]: Failed password for root from 153.36.236.151 port 21266 ssh2 2019-07-08T22:37:26.885192lon01.zurich-datacenter.net sshd\[8452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.151 user=root ... |
2019-07-09 04:58:29 |
| 138.68.186.24 | attackspam | SSH Brute Force, server-1 sshd[15190]: Failed password for invalid user secret from 138.68.186.24 port 46862 ssh2 |
2019-07-09 04:59:30 |